Wrong Message Appears When You Visit a Secure Web Site Whose CDP Is Unavailable (308087)


The information in this article applies to:

  • Microsoft Internet Explorer 5.5 for Windows 2000 SP 1
  • Microsoft Internet Explorer 5.5 for Windows 2000 SP 2
  • Microsoft Internet Explorer version 6 for Windows 2000
This article was previously published under Q308087

SYMPTOMS

When you turn on the Check for server certificate revocation (requires restart) option in Internet Explorer, and then you visit a secure Web site for which the certificate revocation list distribution point (CDP) is unavailable, you may receive a Security Alert dialog box that contains a message similar to the following:
The security certificate was issued by a company you have chosen not to trust. View the certificate to determine whether you want to trust the certifying authority.

Do you want to proceed?
You do not receive the following Security Alert dialog box message, which you would typically expect in this case:
Revocation information for the security certificate for this site is not available.

Do you want to proceed?

CAUSE

This behavior can occur if:
  • You are using a Microsoft Windows 2000-based computer.

    -and-
  • The Check for server certificate revocation (requires restart) option in Internet Explorer is turned on.

    -and-
  • You connect to a secure Web site for which the certificate revocation list distribution point is unavailable.

    -and-
  • Internet Explorer is configured to automatically detect proxy server settings. No manual proxy server settings are configured.

WORKAROUND

To work around this behavior, manually configure your proxy server settings:
  1. Start Internet Explorer.
  2. On the Tools menu, click Internet Options, and then click the Connections tab.
  3. Click the appropriate connection, and then click Settings.
  4. Under Automatic configuration, click to clear the Automatically detect settings check box.
  5. Under Proxy server, click to select the Use a proxy server for this connection check box.
  6. Type the address and port number of the proxy server that you want to use in the Address and Port boxes.
  7. If do not want to use the proxy server for local (intranet) addresses, click to select the Bypass proxy server for local addresses check box.
  8. Click OK, and then click OK again.

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

MORE INFORMATION

For additional information about digital certificates, click the article number below to view the article in the Microsoft Knowledge Base:

195724 Description of Digital Certificates

Modification Type:MajorLast Reviewed:10/10/2003
Keywords:kberrmsg kbprb KB308087
©2003 Microsoft Corporation. All rights reserved.